[eVuln] Foxrum BBCode XSS Vulnerabilty

New eVuln Advisory: Foxrum BBCode XSS Vulnerabilty --------------------Summary---------------- Software: Foxrum Sowtware's Web Site: http://www.foxrum.fr.st/ Versions: 4.0.4f Critical Level: Harmless Type: Cross-Site Scripting Class: Remote Status: Unpatched Exploit: Available Solution: Available...

Kayako SupportSuite 3.0 0.26 - Multiple Cross-Site Scripting Vulnerabilities

Kayako SupportSuite 3.0 0.26 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16094/info Kayako SupportSuite is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the...

FatWire UpdateEngine 6.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16073/info FatWire UpdateEngine is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may...

Commercial Interactive Media SCOOP! 2.3 - articleZone.asp?Invalid Cross-Site Scripting

Commercial Interactive Media SCOOP! 2.3 - articleZone.asp?Invalid Cross-Site Scripting source: https://www.securityfocus.com/bid/16015/info Commercial Interactive Media SCOOP! is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to proper...

Commercial Interactive Media SCOOP! 2.3 - 'category.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16015/info Commercial Interactive Media SCOOP! is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrar...

Commercial Interactive Media SCOOP! 2.3 - 'lostPassword.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16015/info Commercial Interactive Media SCOOP! is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrar...

Commercial Interactive Media SCOOP! 2.3 - 'articleZone.asp?Invalid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16015/info Commercial Interactive Media SCOOP! is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrar...

OpenEdit 4.0 - Results.HTML Cross-Site Scripting

OpenEdit 4.0 - Results.HTML Cross-Site Scripting source: https://www.securityfocus.com/bid/16004/info OpenEdit is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Sitekit CMS 6.6 - Default.aspx Multiple Cross-Site Scripting Vulnerabilities

Sitekit CMS 6.6 - Default.aspx Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16016/info Sitekit CMS is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

SiteEnable 3.3 - login.asp Cross-Site Scripting

SiteEnable 3.3 - login.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/16009/info SiteEnable is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

IntranetApp 3.3 - 'content.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16010/info IntranetApp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed i...

AbleDesign D-Man 3.0 - 'Title' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15993/info D-Man is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'title' parameter. An attacker may leverage this issue to have arbitrary script code...

Hot Banana Web Content Management Suite 5.3 - Cross-Site Scripting

Hot Banana Web Content Management Suite 5.3 - Cross-Site Scripting source: https://www.securityfocus.com/bid/15948/info Web Content Management Suite is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An...

Liferay Portal Enterprise 3.6.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15951/info Liferay Portal Enterprise is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script...

Magnolia Search Module 2.1 - Cross-Site Scripting

Magnolia Search Module 2.1 - Cross-Site Scripting source: https://www.securityfocus.com/bid/15954/info Magnolia Content Management Suite is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Magnolia Search Module 2.1 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/15954/info Magnolia Content Management Suite is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

DCForum 1-6 DCBoard Script - Page Cross-Site Scripting

DCForum 1-6 DCBoard Script - Page Cross-Site Scripting source: https://www.securityfocus.com/bid/15885/info DCForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

ECTOOLS Onlineshop 1.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/15891/info ECTOOLS Onlineshop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

Magic Book Professional 2.0 - Book.cfm Cross-Site Scripting

Magic Book Professional 2.0 - Book.cfm Cross-Site Scripting source: https://www.securityfocus.com/bid/15805/info Magic Book Professional is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Thwboard Beta 2.8 - 'misc.php?userid' SQL Injection

source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of proper sanitization of user-supplied input. A remote...